Over 300,000 WordPress Websites Affected by Critical Forminator Plugin Vulnerability

Leave a Comment / Uncategorized / By

The Forminator plugin for WordPress, utilized by over 500,000 sites, has a vulnerability that could let attackers upload files to the server without restrictions. Developed by WPMU DEV, Forminator is a customizable tool for creating contact forms, surveys, quizzes, feedback forms, polls, and payment forms on WordPress. It features drag-and-drop functionality and integrates with many …

Over 300,000 WordPress Websites Affected by Critical Forminator Plugin Vulnerability Read More »

Hardening the web server of your WordPress website

Leave a Comment / news / By

Web servers are unique in network environments because they are exposed to the internet and serve web traffic to potentially unknown users. Furthermore, web servers often run dynamic applications like WordPress websites or act as proxies for internal applications. Thus, it is not surprising that they are desirable targets for attackers. Hardening a system involves …

Hardening the web server of your WordPress website Read More »

Ongoing Cyberattack Exploits Ultimate Member Plugin

Ongoing Cyberattack Exploits Ultimate Member Plugin

Leave a Comment / Uncategorized / By

Automattic’s WP.cloud and Pressable.com platforms have recently noticed a disturbing pattern of compromised sites. They found that illegitimate new administrator accounts were continuously appearing on the impacted sites. After investigating this matter, a post on the WordPress.org support forums by Slavic Dragovtev brought to light a potential security problem. The issue revolved around a Privilege …

Ongoing Cyberattack Exploits Ultimate Member Plugin Read More »

WordPress Security Risks - 3 Ways to Protect Your Website

WordPress Security Risks: 3 Ways to Protect Your Website

1 Comment / security / By

WordPress is one of the most popular Content Management Systems (CMSs) on the market. What’s more, it’s built to be secure. Still, if this is your first time using the platform, you might be worried about common WordPress security risks. Fortunately, there are a few simple strategies you can implement to protect your site against …

WordPress Security Risks: 3 Ways to Protect Your Website Read More »

Critical Security Flaw in the WooCommerce Payments plugin

Leave a Comment / Uncategorized / By

On March 22, 2023, a significant security flaw was identified in the WooCommerce Payments plugin, a widely used eCommerce payment plugin for WordPress with over 500,000 active installations. Fortunately, white hat security researcher Michael Mazzolini discovered the vulnerability and responsibly disclosed it through HackerOne, allowing websites to install the patched version 5.6.2 before the full …

Critical Security Flaw in the WooCommerce Payments plugin Read More »

How to Protect Your WordPress Site Against Hackers: Top Tips for Optimal Security

Leave a Comment / Uncategorized / By

In today’s digital world, website security is more important than ever. WordPress, the most popular content management system (CMS), is often targeted by hackers. Protecting your WordPress site against cyber threats is crucial to safeguard your data, customers, and online reputation. This blog post will share tips to help you secure your WordPress site from …

How to Protect Your WordPress Site Against Hackers: Top Tips for Optimal Security Read More »

Reducing the WordPress Attack Surface

Leave a Comment / security / By

WordPress is a widely used content management system that powers millions of websites. Security is crucial for the owners running WordPress sites as a breached site can seriously compromise its users and damage their brand’s identity. This blog post looks at some essential WordPress security requirements and hardening methods without requiring a third-party plugin to …

Reducing the WordPress Attack Surface Read More »

How to scan your WordPress instances for Security Issues using WPScan

Leave a Comment / Uncategorized / By

WordPress is a free, open-source web development platform. WordPress is a content management system (CMS) created in PHP and primarily uses MySQL or MariaDB databases. This is a more technical blog post. WordPress is today’s most user-friendly and powerful blogging, content management, e-commerce, and website builder. A Sneak-peek on WPScan The WPScan security scanner was developed …

How to scan your WordPress instances for Security Issues using WPScan Read More »